1 results (0.002 seconds)

CVSS: 5.3EPSS: 0%CPEs: 1EXPL: 1

A vulnerability was found in Braces versions prior to 2.3.1. Affected versions of this package are vulnerable to Regular Expression Denial of Service (ReDoS) attacks. Se encontró una vulnerabilidad en Braces versiones anteriores a 2.3.1. Unas versiones afectadas de este paquete son vulnerables a ataques de tipo Regular Expression Denial of Service (ReDoS). A vulnerability was found in nodejs-braces. • https://bugzilla.redhat.com/show_bug.cgi?id=1547272 https://snyk.io/vuln/npm:braces:20180219 https://access.redhat.com/security/cve/CVE-2018-1109 • CWE-185: Incorrect Regular Expression CWE-400: Uncontrolled Resource Consumption •